d23ad64d78c15e919d542a2558c0d05c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d23ad64d78c15e919d542a2558c0d05c_JaffaCakes118
Size

200KB
MD5

d23ad64d78c15e919d542a2558c0d05c
SHA1

4368de5b4f7cf11b21ecb5fee617b3ac01fd678b
SHA256

9afc5dfa30e7ab40ceac444230a1a1b5954173040226f9e68670a9d956305689
SHA512

5fe99d4ce3bbcf6b0b4e5ada666f6ff25783c32a91d8daa3bbfe2e84399b16d0c6f417efab476a6ced44dd2ee3048be1cf5e915dd6f5f6504258ff01f57b6441
SSDEEP

3072:D0DpmHJe9YWDFaitV4zBaLJPMfbucPYuuIdRRhCQDmZKCwhUWROsTjo:bHJeXciEa2fbuVr+RRhCQDmZKCwr4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d23ad64d78c15e919d542a2558c0d05c_JaffaCakes118

Files

d23ad64d78c15e919d542a2558c0d05c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9a3e3ebe7b14ab7ccdda2eca38dab67f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Terminal\Cycle\Port\This.exe

Imports

gdi32

GetViewportOrgEx
SetDIBColorTable
GetDeviceCaps
GetWindowOrgEx
CreateDCW
CreateDIBPatternBrushPt

kernel32

GetBinaryTypeW
GetFullPathNameW
GetModuleFileNameA
GetOEMCP
lstrcatW
IsBadStringPtrW

user32

DlgDirListW
MessageBoxW
GetKeyboardLayout
GetClientRect
LoadImageW
SetCursorPos
SetMenuDefaultItem
CheckMenuRadioItem
CharLowerW
KillTimer
CharNextW

atl

AtlAdvise
AtlUnadvise

ole32

CoFileTimeNow
CoFreeLibrary
CoGetCancelObject

shlwapi

PathFileExistsA

Exports

Exports

_SetDoubleClickTimeSetDoubleClickTimeSetDoubleClickTime@0

Sections

.uiyjh
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rttgf
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pytohg
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kkjhgj
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kmhjnn
Size: 512B - Virtual size: 123B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a3e3ebe7b14ab7ccdda2eca38dab67f

Headers

File Characteristics

PDB Paths

Imports

gdi32

kernel32

user32

atl

ole32

shlwapi

Exports

Exports

Sections

.uiyjh Size: 1024B - Virtual size: 832B

.text Size: 163KB - Virtual size: 163KB

.rttgf Size: 512B - Virtual size: 64B

.pytohg Size: 512B - Virtual size: 64B

.kkjhgj Size: 512B - Virtual size: 64B

.kmhjnn Size: 512B - Virtual size: 123B

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 28KB - Virtual size: 28KB

.reloc Size: 2KB - Virtual size: 2KB

.uiyjh
Size: 1024B - Virtual size: 832B

.text
Size: 163KB - Virtual size: 163KB

.rttgf
Size: 512B - Virtual size: 64B

.pytohg
Size: 512B - Virtual size: 64B

.kkjhgj
Size: 512B - Virtual size: 64B

.kmhjnn
Size: 512B - Virtual size: 123B

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 28KB - Virtual size: 28KB

.reloc
Size: 2KB - Virtual size: 2KB